City: unknown
Region: unknown
Country: Egypt
Internet Service Provider: TE Data
Hostname: unknown
Organization: unknown
Usage Type: unknown
| Type | Details | Datetime |
|---|---|---|
| attackbotsspam | Attempted connection to port 445. |
2020-07-23 05:02:22 |
| IP | Type | Details | Datetime |
|---|---|---|---|
| 41.41.104.105 | attackbots | Unauthorized connection attempt from IP address 41.41.104.105 on Port 445(SMB) |
2020-04-01 19:42:06 |
| 41.41.104.69 | attack | Attempt to attack host OS, exploiting network vulnerabilities, on 18-03-2020 13:10:41. |
2020-03-18 23:04:47 |
| 41.41.104.150 | attackspam | unauthorized connection attempt |
2020-02-04 17:05:42 |
b
; <<>> DiG 9.10.3-P4-Ubuntu <<>> 41.41.104.64
;; global options: +cmd
;; Got answer:
;; ->>HEADER<<- opcode: QUERY, status: NXDOMAIN, id: 6615
;; flags: qr rd ra; QUERY: 1, ANSWER: 0, AUTHORITY: 1, ADDITIONAL: 1
;; OPT PSEUDOSECTION:
; EDNS: version: 0, flags:; udp: 4096
;; QUESTION SECTION:
;41.41.104.64. IN A
;; AUTHORITY SECTION:
. 311 IN SOA a.root-servers.net. nstld.verisign-grs.com. 2020072201 1800 900 604800 86400
;; Query time: 70 msec
;; SERVER: 183.60.83.19#53(183.60.83.19)
;; WHEN: Thu Jul 23 05:02:18 CST 2020
;; MSG SIZE rcvd: 116
64.104.41.41.in-addr.arpa domain name pointer host-41.41.104.64.tedata.net.
Server: 183.60.83.19
Address: 183.60.83.19#53
Non-authoritative answer:
64.104.41.41.in-addr.arpa name = host-41.41.104.64.tedata.net.
Authoritative answers can be found from:
| IP | Type | Details | Datetime |
|---|---|---|---|
| 5.153.132.102 | attack | Invalid user tomek from 5.153.132.102 port 46605 |
2020-01-26 07:18:20 |
| 84.70.97.186 | attack | GET /wp-login.php HTTP/1.1 |
2020-01-26 07:51:49 |
| 168.61.176.121 | attackbots | Unauthorized connection attempt detected from IP address 168.61.176.121 to port 2220 [J] |
2020-01-26 07:40:59 |
| 203.130.192.242 | attack | 2020-01-25T23:27:18.112179shield sshd\[24288\]: Invalid user testuser from 203.130.192.242 port 41210 2020-01-25T23:27:18.119669shield sshd\[24288\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.130.192.242 2020-01-25T23:27:19.461563shield sshd\[24288\]: Failed password for invalid user testuser from 203.130.192.242 port 41210 ssh2 2020-01-25T23:30:29.673424shield sshd\[25087\]: Invalid user tuser from 203.130.192.242 port 35682 2020-01-25T23:30:29.680816shield sshd\[25087\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=203.130.192.242 |
2020-01-26 07:39:54 |
| 185.189.221.70 | attackbots | Return-Path: |
2020-01-26 07:34:33 |
| 94.23.62.187 | attack | Jan 25 23:02:46 pkdns2 sshd\[37149\]: Invalid user solr from 94.23.62.187Jan 25 23:02:47 pkdns2 sshd\[37149\]: Failed password for invalid user solr from 94.23.62.187 port 59492 ssh2Jan 25 23:06:26 pkdns2 sshd\[37391\]: Invalid user bayou from 94.23.62.187Jan 25 23:06:28 pkdns2 sshd\[37391\]: Failed password for invalid user bayou from 94.23.62.187 port 39950 ssh2Jan 25 23:10:08 pkdns2 sshd\[37667\]: Invalid user laptop from 94.23.62.187Jan 25 23:10:09 pkdns2 sshd\[37667\]: Failed password for invalid user laptop from 94.23.62.187 port 48664 ssh2 ... |
2020-01-26 07:56:15 |
| 83.97.20.46 | attack | Jan 26 00:09:52 debian-2gb-nbg1-2 kernel: \[2253064.838248\] \[UFW BLOCK\] IN=eth0 OUT= MAC=96:00:00:0e:18:f4:d2:74:7f:6e:37:e3:08:00 SRC=83.97.20.46 DST=195.201.40.59 LEN=40 TOS=0x00 PREC=0x00 TTL=241 ID=54321 PROTO=TCP SPT=48483 DPT=5222 WINDOW=65535 RES=0x00 SYN URGP=0 |
2020-01-26 07:26:44 |
| 41.59.211.100 | attackspambots | IP blocked |
2020-01-26 07:53:34 |
| 118.89.247.74 | attack | Jan 20 06:16:15 pi sshd[3479]: pam_unix(sshd:auth): authentication failure; logname= uid=0 euid=0 tty=ssh ruser= rhost=118.89.247.74 Jan 20 06:16:17 pi sshd[3479]: Failed password for invalid user silvano from 118.89.247.74 port 42260 ssh2 |
2020-01-26 07:17:55 |
| 191.176.234.152 | attack | Invalid user dev from 191.176.234.152 port 24654 |
2020-01-26 07:28:16 |
| 49.235.243.246 | attackbotsspam | Invalid user xu from 49.235.243.246 port 43570 |
2020-01-26 07:36:13 |
| 150.136.210.215 | attackbots | Invalid user wk from 150.136.210.215 port 43260 |
2020-01-26 07:35:39 |
| 138.68.171.25 | attackspam | Jan 26 00:21:08 vmd17057 sshd\[26122\]: Invalid user user from 138.68.171.25 port 39406 Jan 26 00:21:08 vmd17057 sshd\[26122\]: pam_unix\(sshd:auth\): authentication failure\; logname= uid=0 euid=0 tty=ssh ruser= rhost=138.68.171.25 Jan 26 00:21:09 vmd17057 sshd\[26122\]: Failed password for invalid user user from 138.68.171.25 port 39406 ssh2 ... |
2020-01-26 07:29:07 |
| 80.241.222.246 | attack | RDP Brute-Force (honeypot 4) |
2020-01-26 07:46:49 |
| 139.59.90.40 | attackspambots | Invalid user server from 139.59.90.40 port 43729 |
2020-01-26 07:28:36 |